High-risk tools in SAP Datasphere MCP Server

High severity SAP Datasphere MCP Server MCP Server 3 of 31 tools

3 of the 31 tools in SAP Datasphere MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

execute_query Execute

Execute a SQL query against Datasphere data (simulated)
query_analytical_data Execute

Execute OData queries on analytical models to retrieve aggregated data with dimensions and measures. Supports full OData query syntax: $select (column selection), $filter (WHERE...
query_relational_entity Execute

Execute OData queries on relational entities for ETL data extraction. Supports large batch processing (up to 50,000 records), advanced filtering, column selection, and paginatio...

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in SAP Datasphere MCP Server

Tools at high risk

Attacks that target this class

More on SAP Datasphere MCP Server

Enforce policy on every SAP Datasphere MCP Server tool call.